Lucene search

[email protected]CVE-2023-4378

HistorySep 01, 2023 - 11:15 a.m.

CVE-2023-4378

2023-09-0111:15:43

CWE-200

[email protected]

web.nvd.nist.gov

gitlab

vulnerability

security

leak

sentry token

url manipulation

incomplete fix

cve-2023-4378

nvd

CVSS3

5.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

AI Score

4.1

Confidence

High

EPSS

0.001

Percentile

34.2%

JSON

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the configured URL in the Sentry error tracking settings page. This was as a result of an incomplete fix for CVE-2022-4365.

Affected configurations

Vulners

NVD

Node

gitlabgitlabRange11.8–16.1.5

gitlabgitlabRange16.2–16.2.5

gitlabgitlabRange16.3–16.3.1

VendorProductVersionCPE
gitlabgitlab16.3.0cpe:/a:gitlab:gitlab:16.3.0::enterprise:
gitlabgitlab16.3.0cpe:/a:gitlab:gitlab:16.3.0::community:

Vendor	Product	Version	CPE
gitlab	gitlab	16.3.0	cpe:/a:gitlab:gitlab:16.3.0::enterprise:
gitlab	gitlab	16.3.0	cpe:/a:gitlab:gitlab:16.3.0::community:

CNA Affected

[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "repo": "git://[email protected]:gitlab-org/gitlab.git",
    "versions": [
      {
        "version": "11.8",
        "status": "affected",
        "lessThan": "16.1.5",
        "versionType": "semver"
      },
      {
        "version": "16.2",
        "status": "affected",
        "lessThan": "16.2.5",
        "versionType": "semver"
      },
      {
        "version": "16.3",
        "status": "affected",
        "lessThan": "16.3.1",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]